LesLibres.org/Rss-Bridge
2
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

[Configuration] Use FILTER_VALIDATE_EMAIL on admin/email

Browse source 
This prevents including arbitrary data as email address.
This commit is contained in:
logmanoriginal 2018-11-10 18:42:36 +01:00
parent 4713fb6190
commit 2bb13169b4
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
lib/Configuration.php
View file

@ -91,6 +91,10 @@ class Configuration {
if(!is_string(self::getConfig('authentication', 'password'))) if(!is_string(self::getConfig('authentication', 'password')))
die('Parameter [authentication] => "password" is not a valid string! Please check "config.ini.php"!'); die('Parameter [authentication] => "password" is not a valid string! Please check "config.ini.php"!');
if(!empty(self::getConfig('admin', 'email'))
&& !filter_var(self::getConfig('admin', 'email'), FILTER_VALIDATE_EMAIL))
die('Parameter [admin] => "email" is not a valid email address! Please check "config.ini.php"!');
} }
public static function getConfig($category, $key) { public static function getConfig($category, $key) {